Projects Reboot 2012 - OWASP Eliminate Vulnerable Code

2) Description: Eliminate Vulnerable Code Project is geared at identifying and removing vulnerable code samples from the public domain. The project has 4 main areas of interest:

i) Internet Web Forums

ii) Educational Institutions

iii) Printed Materials

iv) Open source software

3) Project Team Leader: Waqas Nazir and we already have about 15 contributors for the project.

4) Re boot type: Type 1

5) Goals of the reboot: The goals for the reboot are divided into the following main areas:

i) Internet Web Forums: The Evc Probe scanner needs more rules to be added to scan for other development languages. Currently it is only looking for a small set of issues in .NET and Java code. The hope is to add 50 more checks.

ii) Educational Institutions: Work with at least two educational institutions to review their software development curriculums to identify any insecure code being used to teach developers.

iii) Printed Materials: Review at least one software development book to identify any insecure code being used as references.

iv) Open source software: Identify 1 high impact open source software to begin static analysis and manual review with the help of OWASP members.